Intruder attacks 4chan to expose posting habits of disliked user

An attacker took advantage of a software vulnerability and gained access to the administrative functions of 4chan, a highly popular English-language imageboard, as well as information contained in a database.

The incident resulted in credentials being accessed for three 4chan Pass premium users, according to a Tuesday post by 4chan creator Christopher Poole, also known as ‘moot.' He explained the attacker accessed moderation panels, the reports queue and tables in the back-end database.

The vulnerability has been fixed and the impacted 4chan Pass users are being offered refunds and lifetime passes. Poole wrote that payment information is not stored by 4chan and was not compromised.

According to the post, the attacker revealed they were looking to “expose the posting habits” of a particular user that they disliked.

Get SC Media delivered to your inbox

Whitepaper of the Day

Newswire

Buzz

I would like to receive relevant information via email from Haymarket Media.

SC Media arms cybersecurity professionals with the in-depth, unbiased business and technical information they need to tackle the countless security challenges they face and establish risk management and compliance postures that underpin overall business strategies.